b95c19a73d9aa9d8c20bfb1da139dda4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b95c19a73d9aa9d8c20bfb1da139dda4
Size

152KB
MD5

b95c19a73d9aa9d8c20bfb1da139dda4
SHA1

7ea53f3b9220363b25bfd12cc997ecfa52ee700e
SHA256

e0e21597dce830ea453e36e37adce80d0fe5a6222165b9d9baa141a8f51ca847
SHA512

1c09aff3d267c1fb4c94f668def081950b160ea3b2feaca235eb3ff0ba5ce6e9448a2fd822575db54452d00681cf76a6fc2e9419995db64036b284fe5b89a44a
SSDEEP

768:pHlj9wPSrJhG9oNzOqFdM0Q5GgDcahEaCN6fnEmaClu7e3oVCeGgIOy3+FtwbYx5:puY2SzOqFK0OEe4qeXwbQgIQ91bq

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b95c19a73d9aa9d8c20bfb1da139dda4

Files

b95c19a73d9aa9d8c20bfb1da139dda4
.exe windows:4 windows x86 arch:x86

2afdd4f403a3ad64c6c4adbe1d38a60b

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

msvbvm60

ord696
MethCallEngine
ord628
ord665
EVENT_SINK_AddRef
DllFunctionCall
EVENT_SINK_Release
EVENT_SINK_QueryInterface
__vbaExceptHandler
ProcCallEngine
ord644
ord100

Sections

.text
Size: 144KB - Virtual size: 142KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.data
Size: - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 4KB - Virtual size: 2KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ